Microsoft Office is prone to a local privilege-escalation vulnerability that exists in the Pinyin Input Method Editor (IME). A local attacker can exploit this issue to execute arbitrary code with system-level privileges, resulting in a complete compromise of the affected computer.
Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Given the local nature of this issue, grant only trusted and accountable individuals access to affected computers.
Updates are available. Please see the references or vendor advisory for more information.